news
Centrify streamlines administrative authentication
with biometrics
FIDO2 supports biometric methods
like Apple’s Touch ID electronic
fingerprint recognition, Apple Face
ID facial recognition and Microsoft’s
Windows Hello, which lets Windows
10 users authenticate to their
devices, apps, online services and
networks with just a fingerprint, iris
scan or facial recognition.
entrify, a leading provider
of Identity-Centric
C
Privileged Access
Management solutions, has
announced that it is leveraging the
FIDO2 Web Authentication API to
enable passwordless authentication
for administrators.
With the new capabilities, Centrify
customers can replace passwords
with stronger factors of authentication
such as fingerprint or facial
recognition, ensuring a frictionless
user experience with a higher level
of security. Enforcing FIDO2-based
authentication for privileged administrator
logins based on risk makes Centrify
a single source of truth for privileged
users to access and manage hybrid
infrastructure, achieving stronger security
balanced with better productivity.
FIDO2 is the newest set of specifications
from the FIDO Alliance, enabling users
to leverage common devices to easily
authenticate to online services in both
mobile and desktop environments.
Ultimately, FIDO2 makes security
stronger and less disruptive
because it can eliminate passwords,
which is critically important given
that 81% of security breaches
involve weak, stolen, default or
otherwise compromised passwords,
according to Verizon. Passwordless
authentication ensures that login
credentials are unique across every
website, never stored on a server and
never leave the user’s device. This
security model helps eliminate the
risks of phishing, as well as all forms
of password theft and replay attacks.
SANS LAUNCHES NEW MONTHLY
WEBCAST SERIES THAT BREAKS DOWN
LATEST CYBERTHREATS
ANS Institute, a global leader
S
in cybersecurity training and
certifications, has announced
SANS Threat Analysis Rundown (STAR),
an all-new, free webcast series that
delivers inside scoop on the latest
cyberthreats. Hosted by SANS
Instructor, Katie Nickels, the series
features a variety of experts from
the cybersecurity community who
will give their unique perspectives
on the threat landscape. STAR
was created to provide actionable
information about current threats
so that security professionals can
better protect their organisation.
A previous webcast, xHunt — An
Anime Fan’s Attack Campaign in
the Middle East, featured a discussion
with two members of Palo Alto Networks’
Unit 42 team, Cyber Threat Intelligence
Analyst, Brittany Barbehenn, and
Threat Researcher, Robert Falcone.
It discussed an attack campaign
The STAR webcast series will
cover prominent real-world threats
and relevant topics each month
targeting transportation and shipping
organisations based in Kuwait and
another campaign targeting government
organisations within the country. Both
attacks involved previously unknown
tools the developer named after
characters of a popular anime series.
“Every day, threat analysts around
the world track adversaries and try
to action that information so they can
help their organisations better protect
their networks. We started STAR
to help security professionals
get actionable insights about the
latest threats from the people
who track them every day,” said
Nickels. “We’re going to approach
threats from all angles, whether
it’s examining a group, malware,
industry, or approach. Every month
will feel a little different but our
goal is to give listeners actionable
insights they can take back to their
teams to improve defences.” u
www.intelligentciso.com | Issue 24
13